Presentation
SafeSSD: Treeless SSD Protection by Leveraging Physical Address as Version Number
DescriptionData security is critical for protecting valuable data, especially in environments that demand strict data integrity and confidentiality protection. While memory security has been extensively studied, SSD security remains underexplored despite its growing importance. Recent approaches often adapt memory-focused techniques, such as Merkle tree-based protection, to SSDs, leading to significant overhead from metadata transfers between SSD controllers and NAND Flash devices. Additionally, existing solutions often focus solely on data-at-rest encryption, neglecting the equally critical issue of securing data in transit.
This paper introduces a treeless SSD security mechanism by utilizing the out-of-place update property of NVMe-based SSDs where the physical address (PA) changes with each write. By leveraging PA as a timestamp, our approach eliminates the need for counter and Merkle tree, significantly reducing metadata storage requirements by 1.2x and triggered flash commands by 0.52x. This includes a notable 1.8x reduction in program commands, which extends flash cell endurance. These improvements result in a 2.2x reduction in latency directly accelerates the execution time by 6.7x. Additionally, we show a 0.1x increase in throughput over the closest competing work.
This paper introduces a treeless SSD security mechanism by utilizing the out-of-place update property of NVMe-based SSDs where the physical address (PA) changes with each write. By leveraging PA as a timestamp, our approach eliminates the need for counter and Merkle tree, significantly reducing metadata storage requirements by 1.2x and triggered flash commands by 0.52x. This includes a notable 1.8x reduction in program commands, which extends flash cell endurance. These improvements result in a 2.2x reduction in latency directly accelerates the execution time by 6.7x. Additionally, we show a 0.1x increase in throughput over the closest competing work.
Event Type
Networking
Work-in-Progress Poster
TimeSunday, June 226:00pm - 7:00pm PDT
LocationLevel 3 Lobby